Tuesday, October 13, 2015

What Were You Saying About The Death Of Antivirus?

A lot of people won't be happy to hear this but the fact is that if some chunk of data defines how to recognize a malicious thing, that chunk of data is a signature, and anything that uses chunks of data to recognize malicious things is for all intents and purposes an antivirus. You can't denigrate AV in one breath and then accept IOCs in the next without being a hypocrite.